SAN FRANCISCO, Feb. 15 /PRNewswire/ -- Today, during the 2005 RSA
Conference & Expo, GuardedNet announced automated, real-time policy monitoring
and enforcement capabilities in their award-winning solution, neuSECURE. This
capability enhances an organization's ability to engage in real-time policy
compliance verification, which improves corporate security and facilitates
regulatory compliance.
"Real-time policy monitoring and enforcement represents a major shift in
how companies view security data. Security data has value to many groups
within an enterprise, not just incident response. Risk management, internal
audit and compliance managers can all find value," said Tom McNeight,
president of GuardedNet. "The key is to take the same data and provide
alternate views of it, as if through different lenses. SIM solutions are the
logical choice for providing these views and yet most are used only for
reactive incident management. We are bringing SIM into the proactive policy
realm, and in doing so, placing neuSECURE at the center of enterprise security
operations."
With neuSECURE, internal auditors can see policy violations in real-time,
moving away from a strict framework of scheduled audits and into the realm of
real-time policy compliance verification. Security administrators can
immediately detect internal misuse and quarantine any device or area of the
network considered out of compliance. The shift, from reactive, periodic
policy review to proactive, continuous compliance verification, is of great
importance to the success of today's enterprise.
"In today's world of increased regulation, liability, and corporate
governance, policies provide the road map to manage expectations of
individuals and add process to business requirements. Policies need to be up
to date, understood by those governed, actionable, and actively measured for
compliance. The organization that does not take policies seriously may find
itself in embarrassing legal situations." -- Policies Should Support Business
Requirements and Establish Metrics, Michael Rasmussen, Forrester Research,
Inc., September 2004.
neuSECURE automatically identifies policy violations in real-time and
determines the type of violation (i.e. protocol, service, inappropriate
activity, resource abuse and misuse), its location within the enterprise,
information about the user and the time the violation took place. Furthermore,
neuSECURE evaluates each violation based on its risk to the organization,
which assists security operations teams and system administrators when it
comes time to prioritizing their time and effort. For example, if neuSECURE
identities that a system is running an unauthorized service, such as Telnet,
on a financial network governed by Sarbanes-Oxley, the priority of that policy
violation is increased and the appropriate constituencies are alerted via
real-time dashboard, automated ticket generation and reporting.
Additionally, security teams can automatically enforce a policy when a
violation takes place, through a firewall block or other method of
reconfiguration. While many security teams worry about automating device
reconfigurations, they are much more likely to automate the process when it
means reverting a device back to its intended state.
neuSECURE achieves real-time policy compliance verification by leveraging
the following features:
* Customized Dashboards -- neuSECURE provides customizable dashboards,
with permissioning by view, data and domain, which enable each
constituency to see the security data in a relevant way. For example,
risk management could have one view, internal audit, another.
* Policy Violation Classification System -- neuSECURE has the largest
event classification system in the industry with over 15,000 pre-mapped
event types to over 200 event classifications. It enables users to
quickly and effectively relate events to policy violations within their
environment.
* Policy Violation Ruleset -- neuSECURE's rules engine comes pre-
configured with policy-oriented rules right out of the box (e.g.
unauthorized Chat Client, Perimeter Service or Web Browsing). These
rule sets are based on acknowledged industry best practices, and can
assist an organization in building a policy database. Users can easily
modify existing or create new policy-oriented rules to reflect their
environments.
* Policy Violation Reporting -- neuSECURE's reporting engine is pre-
configured with policy-oriented reports. These reports are also based
on acknowledged industry best practices. These reports can be for
internal or external use and are of great value with external auditors.
Additional policy-oriented reports can be quickly created to meet
organizational needs.
* Real-time Policy Violation Visualization -- neuSECURE's unique
PowerGrid enables users to sift through historic and real-time event
data to identify policy violations. They can be viewed and investigated
using the PowerGrid's event stream viewer, its pivot table, or its
graph functionality.
* Policy Enforcement -- neuSECURE enables users to enforce policy through
firewall reconfigurations, automated ticket generation to aid in
incident remediation, as well as the immediate notification of critical
violations to asset owners
About neuSECURE:
neuSECURE is a security information management (SIM) platform designed to
improve the effectiveness, efficiency and visibility of security operations
and information risk management. neuSECURE centralizes and stores security
data from throughout the enterprise, automating incident recognition and
response, streamlining incident handling, enabling policy monitoring and
enforcement and providing comprehensive reporting for regulatory compliance.
Aspects of information security are performed by various groups within an
enterprise. Each group uses diverse technologies and distinct business
processes, which results in miscommunications, duplication of efforts, and
ultimately, a vulnerable enterprise infrastructure. neuSECURE serves as the
centralized, integrated software platform that unifies the people, processes,
and technology required for successful security operations.
About GuardedNet(R):
GuardedNet delivers advanced enterprise security information management
solutions designed to improve the effectiveness, efficiency, and visibility of
security operations and information risk management. Its software platform,
neuSECURE(TM), enables centralized security monitoring and incident management
in heterogeneous security environments, improving corporate security and
reducing operational costs. GuardedNet has received numerous accolades and was
recently named a finalist in Network Computing Magazine's 2004 Well Connected
Awards for outstanding performance in Security Information Management.
GuardedNet's neuSECURE has also received Information Security Magazine's Hot
Pick of the Month for a security product in February 2004. In 2003, GuardedNet
was the recipient of Information Security Magazine's Horizon Award for
Customer Satisfaction. GuardedNet is a private company, headquartered in
Atlanta, Georgia. For more information about GuardedNet, please call
888-599-8297 or visit http://www.guarded.net .
SOURCE GuardedNet
 back to top
Related links:
http://www.guarded.net
CONTACT:
Kelly Schupp, Director of Marketing of
GuardedNet, +1-404-591-8225, or kschupp@guarded.net
NOTE TO EDITORS: GuardedNet(R) is a registered trademark of
GuardedNet Inc. All other companies, brand names or products are
trademarks or registered trademarks of their respective
companies.
|
